Route Origin Authorization
$ rpki-client -vvf ca.rg.net/rpki/RGnet-OU/ovsCA/hA2Uzyo82JJIKu7NSqeT2gBSNa4.roa
File: hA2Uzyo82JJIKu7NSqeT2gBSNa4.roa (raw, json)
Hash identifier: +Wo21MhoZPDGXiZysMiK2O4c8jpCoWIdHxdUL5ZdWeM=
Subject key identifier: 84:0D:94:CF:2A:3C:D8:92:48:2A:EE:CD:4A:A7:93:DA:00:52:35:AE
Certificate issuer: /CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Certificate serial: 435E
Authority key identifier: 58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
Authority info access: rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
Subject info access: rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/hA2Uzyo82JJIKu7NSqeT2gBSNa4.roa
Signing time: Fri 18 Feb 2022 00:30:09 +0000
ROA not before: Fri 18 Feb 2022 00:30:09 +0000
ROA not after: Sun 01 Jan 2023 01:01:02 +0000
asID: 47065
IP address blocks: 147.28.3.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17246 (0x435e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Validity
Not Before: Feb 18 00:30:09 2022 GMT
Not After : Jan 1 01:01:02 2023 GMT
Subject: CN=840D94CF2A3CD892482AEECD4AA793DA005235AE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f7:f1:fe:18:cb:cf:a0:f8:99:cd:cd:ac:a4:4b:
01:d2:4b:d5:f4:1e:92:d3:5e:da:42:f5:cd:5a:6c:
4a:b9:31:d6:3d:ca:00:2a:6e:4b:b5:15:39:a0:04:
28:b8:9e:65:05:ba:ed:d1:5c:b9:b2:ba:a3:45:7f:
81:9d:4b:c2:d6:24:fe:80:a7:d5:c5:07:9e:b3:64:
f3:11:26:26:7d:db:9a:d3:26:e8:c5:a5:c2:99:65:
85:58:07:4f:53:ce:c1:61:9a:30:ac:f6:fe:e1:20:
6c:f4:61:ce:6f:8e:97:dc:ba:2e:0d:08:71:5b:19:
71:4b:c3:3e:f4:e4:14:95:ba:30:9a:b3:ea:83:5e:
15:0b:ec:b5:81:05:14:f1:1f:87:35:fc:f8:2b:1a:
c6:3b:e3:50:33:29:dd:80:51:c8:0d:b8:42:ca:01:
80:49:a4:70:1d:d9:ad:92:50:db:32:07:55:f0:2a:
d5:fc:7c:2d:9e:96:41:0a:74:83:a2:f9:8f:b5:13:
f0:ca:ac:3b:f7:27:32:59:c6:4c:ea:5b:82:00:a4:
f3:23:f1:e4:da:e3:d9:02:97:46:c3:b0:09:ed:ce:
33:a5:f4:15:12:a3:6a:f8:00:e0:17:dd:df:e7:b6:
56:c0:11:8a:cd:c2:f9:f9:1b:cb:d4:c5:0a:1a:2e:
05:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:0D:94:CF:2A:3C:D8:92:48:2A:EE:CD:4A:A7:93:DA:00:52:35:AE
X509v3 Authority Key Identifier:
keyid:58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/WMf3kmevdLp9L8wlYmUsNbXhPrE.crl
Authority Information Access:
CA Issuers - URI:rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/hA2Uzyo82JJIKu7NSqeT2gBSNa4.roa
RPKI Notify - URI:https://ca.rg.net/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
147.28.3.0/24
Signature Algorithm: sha256WithRSAEncryption
64:2e:7b:0b:e1:0e:51:cf:43:5c:67:c2:42:ad:a0:1f:ab:c1:
40:53:e7:0c:84:48:50:18:68:c9:62:f5:87:6b:d9:d2:1c:0e:
d7:0c:af:f2:e9:c8:f1:88:21:08:d7:57:03:11:ec:3e:85:e7:
b2:68:cc:31:2d:5e:0a:8d:d1:da:49:7c:6c:19:cf:7f:8f:21:
fb:aa:b4:57:3a:a5:81:03:93:15:fe:4e:eb:07:81:9a:07:91:
44:20:65:69:ca:c8:cd:fa:6c:64:84:57:89:53:b3:85:48:3c:
2e:e1:24:62:3f:4f:48:30:fe:20:e8:c2:f2:a2:e3:5c:a6:b3:
7a:d9:78:3b:de:54:df:de:d7:92:b7:d0:b0:ea:84:a3:38:be:
9e:84:63:d1:57:2b:2f:6f:66:67:52:18:87:2d:3e:4b:ec:eb:
37:a1:0a:60:aa:f5:3c:cd:4d:b8:56:e5:c3:de:62:cc:44:42:
cf:67:70:f5:c9:58:d3:ad:6e:b3:2c:f6:98:1d:b9:67:b7:5a:
e4:e7:c5:51:c9:3f:06:7a:6f:dc:42:6a:f1:05:a5:8a:4e:7e:
17:08:aa:45:f2:be:24:d1:f8:07:ef:58:a0:ba:bc:f4:c1:2f:
e2:30:54:89:0f:6f:86:1c:43:9e:4a:be:7c:d5:2f:37:e5:52:
a7:c8:db:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:13:52 2023 by rpki-client on console-ams.rpki-client.org